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(54) Crypt key system for broadcast programmes 

(57) The invention relates to a crypt key system 
applicable to a television system, a datatxtse system or 
an electronic commercial transaction system or the like. 
This system consists of a broadcasting station 11 , a 
datak>ase 12, a receiving apparatus 14. a data commu- 
nication apparatus 15 and a user terminal 1 8. As a crypt 
key systerh, a' secret-key cryptosystem, a public-key 
cryptosystern, and a digital signature system are used. 
The keys used in the system are either encrypted or 
remain .uncrypted to be supplied by broadcasting. The 
present invention is effective in the prevention of an 
unjustified use of the database system, managing cop- 
yrights, and in a pay-per-view system and a video-on- 
demand system. Further, the present invention is effec- 
tive in realizing an electronic market which uses an elec- 
tronic data information system. 
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Description 

Background of the Invention 
Field of the Invention 

The present invention relates to a crypt key^ system 
that Is used in a commercial trade or the like which uses 
a television system, a database system or an electronic 
data interchange, r 

Prior Art 

In information oriented society of today. In addition 
to a normal ten-estrial broadcasting, satellrte broadcast- 
ing which is referred to as a broadcasting satellites (BS) 
and communication satellites (CS) or cable TV broad- 
casting which Is referred to as CATV (cable television) 
using coaxial cables or optical cables is getting preva- 
lent. 

in a satellite broadcasting or CATV broadcasting 
which distributes several tens of channels at the same 
time, scrambled channels of such as films, sport events, 
and music which cannot be viewed through a compre- 
hensive contracts are provided in addition to unscram- 
bled general channels. In order to view these channels, 
it is necessary to subscribe to descramble the channels: 
however, normal subscription period is about one- month 
unit, and it is impossible to view through tenporary con- 
tracts. , 

The inventor of the present i nvention proposed in the 
Japanese Patent Application. Laid-open No. 6-46419 
and the Japanese Patent Application Laid-Open Na6- 
141004'a system in which users obtain a viewing permit 
key from a charging center via a communication line and - 
charged; and descrambles progranns scrambled each by 
respectively different scramble pattern, using the viewing 
permit key to view the programs; proposed In the Japa- 
nese Patent Application Laid-Open No. 6^132916 an 
apparatus for the operation. 

In these system and apparatus, those who wish to 
use scrambled programs request for viewing to the 
charging center via a communication fine by using a 
a)mmunication apparatus. The charging center trans- 
mits the viewing permit key to the communication appa- 
ratus corresponding to the request for viewving while 
charging and collecting a fee. 

Users, on receiving the viewing permit key with the 
communication apparatus, transmits the viewing permit 
key via direct means connecting the communication 
apparatus and the receiving apparatus or via indirect 
means such as flexible disks or the like. The receiving 
apparatus to which the viewing permit key is transmitted 
descramtrfes the programs with the viewing permit key 
and then, the users use the programs. 

Japanese Patent Application Laid-Open No 6- 
1 3291 6 describes a system and an apparatus for sell and 
rent of a tape or a disk on wWch a plurality of data scram- 
bled with a different scramble pattern respectively are 



recorded to supply the viewing permit key with IC cards 
or the like and use a specific data. 

In addition, in these days of information- oriented 
society, a database system has been propagated for 
5 mutually using, data which are kept independently tiy 
each computer by constituting a computer communica- 
tion network by LAN (local area network). WAN (wide 
area network), and Inter-Net system mutually connecting 
these networks. 
10 In the meantime, a technology has been developed 
for reducing the infomrialion annount by conpressing a 
television moving picture signal which could not be digi- 
tized because of a huge amount of information as a result 
of digitization, to enable practical digrtaiizatlon. So tar, 
IS H.261 standard for video conference, JPEG Goint photo^ 
graphte image coding experts group) standard for static 
pictures, MPEG 1 (moving picture image coding experts 
group 1) standard for storing pictures and MPEG 2 cor- 
responding to the present telecast and the high- deflnl- 
20 tion telecast from the television broadcasting are • 
prepared. 

The digitization technology using these picture com- 
pression technology is used for the television broadcast- 
ing or the video picture recording. In addition, even 

25 television moving picture data which couW not be dealt 
with before can be dealt with now. Then, the "multimedia 
system" which deals witii various data dealt Witti by the ■ 
computer and tine digitized television moving picture data 
has been focused as a future technology 

30 This multimedia system is also incorporated in the 
data communication and can be used as one data on the 
database. 

While the scope of usage of the database is 
expanded, the method for charging for tiie data usage 

35 on the database, and the method for dealirig witii copy- 
right problems generated by copying, transmitting other" 
than direct usage of data, and also the secondary ej^loi- 
tation right problem generated as a result of data edition 
have become important problems. 

40 To safely deal with charging and copyrights process, 
it is required that the data cannot be used by users other 
than authorized users, and data encryption is the best 
means for it. 

In addition, an elecfronic market system has been 
45 investigated for converting information in various kinds 
of transaction which has been carried out by paper doc- 
uments so far, into an electronic data to execute elec- 
tronic transaction by using tine electo-onlc data 
Interchange for transmitting and receiving data by the 
so data communication technology. In addition, an investi- ' 
gation is also made on the possibility of carrying out an 
electronical settiement on tiie electronic oomm^dal 
transaction system 

In the commercial transactions, the reliability on the 
55 transaction details is required and the security in the set- 
tiement is required. Consequentiy. in ttie electronic com- 
mercial transaction system and electronic settiement 
system in which such reliability and security are 
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demanded, rt is required that the data is encrypted sa ■ 
that the data will not be falsified or. used unjustif iedly. 

In these television system, database system or elec- 
tronic commercial transaction system or the like.-^the data > ^ 
is encrypted and.thus a crypt key is required for decrypt-.- r.. 5 
ing the encrypted data to us. And the crypt key fnust be -'h-; 
given to data users; however, the processing is very trou- * - 
Uesome because security and reliabiiity are demanded. . 

In the structure of the present invention, data cryp- • . 
tology acts an important part. In the beginning, a general io 
explanation will be made on the data cryptology. -r . ty <. 

In the data cryptology. the case in which the plaintext v.- 
data M is ericrypted by using a crypt key K to obtain a^ - 
cryptogram data C is represented; 

. 15 

C=E(K.M).. * 

and the case in which the cryptogram data C tsdecrypted 
by using the crypt key K to obtain the plaintext data M is 
represented: -. 20 

M=D..{K. C) 

As a typical method for the data cryptography tech- 
nology, there are a secret-key ayptosystem and a pubWc- 2S 
key cryptosystem. The secret-key ayptosystem is a 
cryptosystem.in which same seoet key Ks is commonly . 
used in encryption and decryption 

Cmks=E (Ks. M) - 30 

M=D (Ks. Cmks) 

The puWic- key cryptosystem is a cryptosystem.in. . 
which' a key .tor encryption and a key for decryption. are • 35 
used as crypt keys, and the key for encryption is laid open 
buX the key for decryption is not open. The key tor encryp- 
tion is referred to as a public-key Kb while the key for 
decryption is referred to as a private-key Kv. To use this . 
cryptqsystem.an information sender encrypts the plain- 4o 
text data M by the put>ic-k6y Kb of a receiver 

••* " ■ ■ .- ". f . ' 

CfTikb=E (Kb. M). 

and the receiver receives the data and decrypts.it t>y a 45 
private-.key Kv to obtain the plaintext data M 

MoD (Kv, Cmkb). 

In this public-key cryptosystem, cryptanalysis is very dil- so 
ficultr . . • . • 

As an application of the data cryptography technol- 
ogy, digital signature is performed as an electronic data 
authentication means to ensure the reliability of the data. 

The digital sigriature is used a secret-key or a public- 55 
key. Generally, the put)Iic-key is used in the digital signa- 
ture. 

In the digital signature which is carried out by using 
the pubiic-key, the signer obtains a digital signature by 



encrypting a documerrt m to which the document M is 
compressed with hash algorithm, using the private-key 
Kv of the signer: 

Smkv^E (Kv. m) * ' 

arvj transmits the original .'document M of the com- 
pressed document'm and the digital signature Snrlkv to 
the receiver, r :• ^\ . ' c..-.: - 

The receiver decrypts the digital signature Smkv by 
using the public-key Kb of the signer 

m =D (Kb. Smkv). 

When m'=m is established, it is recognized that the sig- 
nature is correct. ! - J S 

As a method for providing these crypt keys to'users. ' 
the inventor of the present invention proposed an inven- 
tion entitled "crypt key system* in the prior Japanese Pat- ' 
ent Application No. 6-70643. 

In the generally practiced crypt key system; the crypt 
key is provided only to users while the crypt key is pro- • 
vided.to persons other than the users in the crypt key 
system of this prior invention. : ; 

Rg. 1 shows the structure of the crypjt key system 
proposed in the Japanese Patent Application No.» 6- 
70643. ^ ^ - . 

This system comprises a broadcasting station 1 for 
multiplex fcxjadcasting such as BS.CS. terrestrial broad- 
casting or FM or the like or data broadcasting, a data- 
base 2,' a charging center 3, a receiving apparatus 4.' 
data communication apparatus 5 and a user's terminal 8. 

The broadcasting station Land the database 2, and 
the database 2 and the chargingcenter 3 are connected 
to each other via- a communication-line such asa dedi-*^ 
cated line or the like or-f lexible disc or the like.* The data? 
base 2 and the data communication apparatus S ai-e 
connected by a communication line 7 such as a commu- 
nication line or CATV line. 

The broadcasting station 1 and the receiving apparatus 
4 are connected with the broadcasting radio wave 6. The 
receiving apparatus 4 and the user terminal apparatus 
8. and the data communication apparatus 5 and the user 
terminal 8 are connected with a direct means such as a 
connection catile or an indirect means such as a flexible 
cfisc. . 

in Fig. 1 . what is shown with a solid line is a p>ath of 
information which is not encrypted- What is -shown with 
a broken line is a path of data which is encrypted. 

in this system, the database 2 preliminarily, supplies 
a permit key Kp (hereinafter referred to as a "permit key^ 
including the crypt key Kd which is different from one 
data to another to the broadcasting station 1 . The permit 
key Kp isexplained.in such a manner that the permit key 
Kp constitutes the crypt key Kd only for tsetter under- 
starvGng. 

In some cases, the crypt key Kd is suppGed without 
being encrypted, and in other cases, it is enaypted by 
using the common crypt key KO 
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CkdkO=E (KO, Kd). 

and is supplied as an encrypted crypt key CkdkO. • * 

In the case where the aypt key Kd Is encrypted and 
supplied, a comnion crypi key KO for decrypting the 
encrypted crypt key CkdkO is supplied to users. This 
common crypt key KO is supplied when users register 
with the database, or it is SMpplied to'the users together 
with the encrypted data Cmkd when the encrypted data 
Cmkd Is transmitted. ' 

(a) In the case where the crypt key is not encrypted: 

In this crypt key system. the broadcasting station 1 
broadcasts the crypt key Kd supplied from the database 
2. by using the radio wave 6. 

The receivirig apparatus 4 supplies the received 
crypt key Kd to the user terminal 8 so that the user ter- 
minal 8 stores the received crypt key Kd In a recording 
medium such as a semiconductor memory, a flexible 
disc, a hard disc or the like. 

The users who wish to use the data riaquest for the 
use of the data M to the database 2 via the communica- 
tion line 7 by using the data communication apparatus 5. 

The datatsase 2 wvhich has received the request for 
use of the data M encrypts the data M by the crypt Key 
Kd which is a permit key Kp 

Cmkd=E (Kd, M). 

and transmits the encrypted data Cmkd to the data com- 
munication apparatus 5 of users via the communication 
line 7 and charges with the charging center 3. ' 

The data communication apparatus 5 supplies the 
received^ encrypted data Cmkd fo the user terminal 8 
while the user terminal 8 decrypts the encrypted data 
Cmkd by the crypt key Kd which is stored in the recording 
medium - ! . . > 

M^D (Kd, Cmkd). 

(b) In the case where the crypt key is encrypted and the 
common crypt key is preliminarily distritxjted to users: 

In this crypt key system, when users register to use 
the datEibase, the conrimon crypt key KO is supplied to 
users with the recording medium such as ROM or flexible 
disc and the supplied corhmon crypt key KO is stored in 
the user terminal 8. 

The database 2 encrypts the crypt key Kd by using 
the cdmnrton crypI key KO * • 

■ CkdkO=E (KO. Kd), 

and supplies encrypted crypt key CkdkO to the broad- 
casting station 1 . 

The broadcasting station 1 broadcasts the received 
encrypted aypt key CkdkO supplied from database 2 by 
using the radio wave 6. 
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The receiving apparatus 4 supplies the received 
encrypted crypt key CkdkO to the user terminal 8 which 
decrypts the encrypted crypt key CkdkO In the beginning 
by the preilmlnanly stored common crypt key KO 

Kd»D (KO. CkdkO), 

and stores the decrypted crypt key Kd in the recording 
medium such as a semiconductor memory, a flexibledisc 
or a hard cfisc. 

Users who wish to use the data requests for the use 
of the data M to the database 2 via the communication 
line 7 by using the data communication apparatus 5. 

The database 2 which receives the request for tlie 
data usage encrypts the data M which Is demanded for 
usage encrypts data M by the crypt key Kd 



Cmkd=E (Kd. M). ' • 

and transmits it to the data communication apparatus 5 
via the communication tine 7 and chargess with the 
charging center 3. 

The data communication apparatus 5 supplies the 
received encrypted data Cmkd to the' user terminal 8 
which decrypts the encrypted data Cmkd by the stored 
aypt key Kd 

M^D (Kd. Cmkd); * 

(c) In the case where the crypt key is ericrypted arxl the 
common crypt key is distributed to the user together with 
the encrypted data: 

In this crypt key system, the database 2'encrypt the 
aypt key Kd by the common crypt key KO 

CkdkO=E (KO. Kd) 

and supplies it to the broadcastiiig station 1 . 

The broadcasting station 1 broadcasts the 
encrypted aypt key CkdkO which has been supplied 
from the database 2, by using the radio wave 6. 

The receiving apparatus 4 supplies the received 
encrypted crypt key CkdkO to the user terminal 8. The 
user terminal 8 stores the encrypted crypt key CkdkO in 
recording medium such as a semiconductor memory, a 
flexible disc, or a hard disc or the like. 

Users who wish to use the data request for the use 
of the data M to the database 2 via the commuriication 
line 7 by using the data comnujnication apparatus 5. 

The database 2 which receives the requesi for the 
data usage encrypts the data M wWch is demanded for 
use by the crypt key Kd 

Cmkd=E (Kd. M), 

arxl transmits it to the data communication apparatus 5 
via the communication line 7 together with the common 
crypt key KO and charges with the charging center 3. 
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The data communication apparatus 5 supplies the 
received encrypted data Cmkd and the conrimon crypt ^ • 
key KO to the user terminal 8. .The user terminal ^8 
decrypts the encrypted crypt key CtalkO which has been . 
stored in the recording medium by the common crypt key 5 
KO 



Entf>odiments 

Embodiments, of the present invention r will be 
descrOaed by using Figs. 2 through .4- . 

[Embodiment 1] • ^ • 



KdsD (KO, CkdkO). A system shown in Fig. 2- is a aypt key system of 

the embodiment 1 jn which ifrie. present invention is 
and deaypts the enaypted data Cmkd by the decrypted 10 applied to a database system. This system conprises a 
crypt key Kd . . ■ broadcasting station 1 1 which either a multiplex broad- 

casting by of BS, CS. a terrestrial wave television, .or FM 
. M=D (Kd. Cmkd). broadcasting or the like, or data broadcasting by a cfigital 

broadcasting, a database 12 in which various kinds of 
Summary of the Invention - . data including moving picture data is stored, a charging - 

center 1 3. a receiving apparatus 1 4.for receiving the data 
The present invention provides a concrete structure broadcasting offered by the broadcasting station 1 1 , a 
for applying the invention of the crypt key system dsrta communication apparatus 15 for .communicating 
described in the previous applications to the teievision with the database 12 and the user terminal 18 for using , 
system, the database system or the eleotronic commer- 20 the data. 

ctal t-ansaction system or the like. The database 12 and the broadcasting station 11. 

This system oonnprises a tvoadcasting station, a- . and the database 12 and the charging center 13 are oorv 
database, a receiving apparatus, a data communicatron nected with a direct means, connecting with a communir 
apparatus, arxi a user terminal. As the crypt key system, . cation line such as a dedicated line or an indirect means 
secret-key cryptosystem and the putslic-key cryptosys- 25 such as a flexible disc or the like. The database 12 and 
tem are used. In addition, the digital signature is used. the data communication apparatus.Sare connected with 
and the crypt key is supplied through broadcasting with a commurication line 17 such as a oommunk:ation line; 
either encrypted or uncrypted.- or CATV tine or tiie like. Then, the broadcasting station 

The present invention is effective in the prevention 1 1 and the receiving apparatus 1 4 are connected with a 
from unjustified use or the copyright management in the 30 radio wave 1 6 such as a terrestrial wave television broad- 
database system, a pay-p>er-view system, or a video^orv casting, satellite television broadcasting,- CATV broad- 
demand system. Furthemore. the present invention is a casting. FM broadcasting or a satellite data broadc^ng 
useful means in the realization of an electronic market or the like. The receiving apparatus 14 arxi the user ter- 
using the electronic data interchange system. , ■ minal 1 8. and tiie data qommunicatipn apparatus 1 5 and 

35 the user terminal :18 are cormected. with a direct- m 
Brief Description of the Drawings such as a connection cable or an jndirect means such. 

as a flexible disc or the.like. 

Fig. 1 is a structural view of a crypt key system What is shown with a solid line in Fig. 2 is an. 

according to the prior applications. uncrypted data path and what is shown with a broken 

. - - -40 line is an encrypted data path. 
Fig. 2 is a structural view of the crypt key system Incidentatly. data exchange between the database 

according to a first embodiment of the present inven- 12 and the broadcasting station 1 1 .and the database 12 
tion. . and the charging center 13 are. in principle, carried out 

with a dedicated Gne or a flexible disc. In addition, a put)Sc 
Rg. 3 is a structural view of the crypt key system 45 line, a broadcasting satellite, a commu.nication satellite 
according to a second embodiment of the present . or a terrestrial wave broadcasting can be used. In such 
invention. a case, the data is encrypted.. 

in this system, the secret-key cryptosystem arid the 
I^g. 4 is a structural view of the crypt key system public-key cryptosystem are used, 
according to third and fourth embodiments of the so The datat>ase 12 prepares the putilic-key Kbd and 
present invention. . * the private-key Kvd to supply the public-key Kbd to the 

broadcasting station 1 1 . The broadcasting station 1 1 
Figs. 5(a). 5(b) and 5(c) are structural views of fifth which receives the putjiic-key Kbd broadcasts it by a tele- 
emtxx£ment to which the present invention is text multiplexing broadcasting using scanning lines dur- 
applied. 55 ing the retrace blanking interval period of an amaiog 

teievision picture signal, the data broadcasting using a 
sub audio band of the analog television audio signal. FM 
multipl ex data broadcasting or digital data broadcasting. 
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Further. In this case, a digital signature of the data- 
base 1 1 can be done to the public-key Kbd. • ' - 

The data'may be supjjlied without encrypting the 
menu in which the titles of data which can be used, the 
content introduction of the data, product catalogs, order 
forms, blank checks, the copyright irrformartion for the 
convenience of the data usage. • 

The Receiving apparatus 14 which receives the 
transferi^ed public-key Kbcl sends the-puWic-key Kbd to 
the user terminal 18. The user terminal 18 which 
receives the transferred public-key Kbd stores the public 
key Kbd In the recording medium such as 'a semiconduc- 
tor memory, a flexible disc, or a hard disc or the tike. 

Users who select the data which they request for 
usage by means of menu or the introduction of contents 
request for the use of data M to the database 12 via a 
communication line 1 7 by the data communication appa- 
ratus IS. ^ 

At this time, the user encrypts the public-key Kbd of 
the database 12 by own secret-key Ksu which has 
received from the database 12 

Cksiikbd«E (Kbd. Mksu) ' ' 

and transmits it to the database 12 

The database 1 2 decrypts the encrypted seaet-Key 
CksuWxl of the user by the private-key Kvd 

l^5U«D (Kvd. Cksukbd) * 

and encrypts the data M which is requested for use by 
the decrypted user secret-key Ksu 

Cmksu=E'(Ksu, M).; 

and transmits it to the data commiinicertioh apparatus 15 
of the user via the communication line 1 7. 

The user who receives the data Cmksu encrypted 
by own secret-key Ksu decrypts the encrypted data 
Cmksu with the user terminal 18 

M«D (Ksu. Cn*su) 

to use it. 

This system is provided with charging center 13 
which is incorporated with the database 12. This charg- 
ing center 13 is used' when the data is provided with pay 
basis. In the case where the'data is one which is provided 
with free such as shopping information or the like, this 
charging center 13 is not used. However, even the data 
provided with free such as shopping Information or the 
like, the charging center is used in the case where 
charges are to be setHed along with orders. 

[Embodiment 2] 

Fig. 3 shows a crypt key system according to 
embodiment 2 in which the present invention is applied 
to a video on demand (VOD) system which broadcasts 



television prografris cdnresponding to the requests from 
users. 

This system comprises a CATV station 21 , a charg- 
ing center 23, a receiving apparatijs 24, a data commu- 
5 nidation apparatus 25 and a user terminal 28. 
; The charging center 23 is used when the television 

program is provided on pay basis but not used when the 
television program is provided without charges along 
with advertisement. 
10 In this system, the encrypted television broadcast 
programs and the aypt key are transmitted with the 
CATV line 27 which is a single path. 

The CATV station 21 and the charging center 23 are 
connected with a direct means for electrical connection ' 
IS with a communication line such as a dedicated line or 
tiie like, or an indirect means such as flexible disc or the 
like. The CATV station 21 and the receiving apparatus 
24, tile CATV station 21 and the data communication 
apparatus 25 are connected with the CATV cable 27. The 
20 receiving apparatus 24 and the user terminal 28, the data 
communication apparatus 25 and the user terminal 28 
are connected with a direct means such as a connection 
cat>le or an indirect means such as a flexible disc or the " 
like. 

25 VWiat is showwi with a solid line in Rg. 3 is an 
uncrypled data path and what is shown with a broken 
line is an encrypted data path. 

Incidentally, the data exchange between tiie CATV 
station 21 and the charging center 23 is carried out 

30 through a dedicated line or a flexible disc in principle: 
Additionally, the data exchange is' also carried out t)y 
means of tiie communication line or the broadcasting 
satellite, the communication satellite and the terresti-ial 
wave broadcasting. In tiiis case; tiie data is encrypted. • 

35 In this system, the CATV system is freated as one 
kind of database. As a crypt key method, ttie secret-key 
cryptosystem and the public^ key cryptosystem are* 
adopted. 

Users who use tills VOD system either registers their 
40 own public-key Kbu witti the CATV station 21 in advance, 
or transmit the putriic-key Kbu by using the communica- 
tion apparatus 25 at the time when the request for usage. 

The CATV station 21 encrypts ttie secret- key Ksb 
of the CATV station 21 by the transmitted pufc»lic-k^ Kbu 
45 of users 

Cksbkbu=E (Kbu. Ksb) 

and transmits it to the data communication apparatus'25 
so via the CATV line 27 

The television program M is encrypted by using 
tiie secret-key Ksb of the CATV station 21 

Cmksb=E (Ksb. M) 

55 

aind is broadcast to the receiving apparatus 24 via the 
CATV line 27. 
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The user, decrypts the received ^crypted seaert-. . 
i^ Cksbkbu of the CATV station 
21 by the private-key Kvu of user 

Ksb=D (Kvu. Cksbkbu) . ' 

and decrypts the encrypted television program Cmksb . 
using the decrypted secret-key Ksb of the decrypted ' 
CATV station 21 

. M=D(Ksb. Cmksb) 

for use. 

in addition, this crypt key system is applicable, (f 
encryption is available, to the television broadcasting is 
other than CATV, audio broadcasting, or data broadcast- 
. ing. As a method for transmitting the crypt key from the 
broadcasting station, the teletext multiplex broadcasting 
using the scanning lines during the retrace blanking 
inverval of an analog television ppicture signal, the data . so, 
broadcasting using an sub audio band of the analog tel-.. . 
evision audio signal. FM multiplex data broadcasting, or 
digital data broadcastirig can be also used. 

In addition, this crypt key system can be used when ^ , 
the crypt key is distributed in the data copyright manage-. . 25 
ment system which is described in prior Japanese Patent 
Applications Nos. 6-64889. 6-237673. 6-264199. 6- 
264201 and 6-269959 proposed by the present inventor.' 

T]iis crypt key system can be also applied to a case . 
where a recording medium such as a CD-ROM or the 30 
like in which a plurality of informations are encypted with 
a plurality of different patterns and are recorded, .which 
is described in Japanese. Lakl-Open Patent Application 
No. 6^ 1 3291 6,. proposed by the present Inventor. 

These ' inventions of previous applications . ai-e ss 
explained hefeinbelbw. 

An outline of the data copyright managemerit sys- 
tem described in Japanese Patent Application No. 6- 
64889 is described as follows. 

To control the copyright in the display (including the . 40 
process to sound), storage, copy, edit and transfer of dig- 
ital data in the database system including a real time 
transmission of a digital picture, any one or a plurality 
among a program for managing the copyrights a copy- . 
right inforrratibn and a copyright management message ' 4S 
are transmitted, when needed, in addition to a permit key 
for allowing the use of encrypted data oonesponding to 
usage requests from users. 

The copyright management message is displayed 
on a screen arid advises or warns to the user in case the so 
data.is utilized other than the conditions of user's request 
or the permission. T the copyright management program 
watches and controls in order that the data is not utilized 
beyond the conditions of user's request or the permis- 
sion. S5 

The copyright management program, the copyright 
infonfnation and the copyright management message are 
supplied together wHh a permit key in some cases, or 
they are supplied together with data in some other cases. 



Or. a part of-them is supplied together with the perm^:. 
key. and other part is supplied with the data. 

For data, the permit key. the copyright management 
message, the copyright information arid the copyright 
management program,^ there. are ttie following three 
cases: a case where these '.are transmitted with , 
encrypted, and upon using, the encryptton is decrypted, 
a case where they are transmitted with. encrypted and 
remain in encrypted except being decrypted only wt^en 
they are displayed, and a case where they are not , 
encypted at all. . 

An outline of ttie data copyright rnanagerrient sys-. 
tem described in Japanese Patent Application No. 6-* 
237673 is described as follows. 

" This datat>ase copyrigtit management systern com- ' 
prises a database in which uncrypted data is stored, a . 
data supply means of a broadcasting statioh.such as sat- . . 
ellite broadcasting station for broadcasting the encrypted 
data from the database, or of a recording medium such 
as a CD-ROM where encrypted data from the datat»ase , 
is recorded, a communication network, a key .coritrol 
center for controliing a crypt key. and a copyright man- 
agement center for controlling copyrights of the data- 
base. Then, the database utilization program for using 
the datat>ase, the copyright management program for 
controlling the copyrights, a first crypt key and a second- 
crypt key are used. 

A first user registers with the key control center in 
advance for using the database. At that time, the data- 
base use program is distributed. This database utiliza- 
tion program includes information on the first user and a, _ 
program for generating a crypt key unique to the first user 
with a predetermined algorithm by using ttie information. 

The data is stored in the. database without 
encrypted, and when it is distraxited by txoadcast. or 
through recorded on a recording mediurn. or a coirirriurii-. ^ . 
cation network, the data is .encrypted by the first crypt . 
key to an enaypted data. . 

The encrypted data is stored in recording medium 
such as a semiconductor memory of the first user termi- 
nal, a flexible disc or hard disc,' when distributed via 
broadcasting or communication networK is stayed as is 
when recorded in a CD-ROM recording medium and dis- 
tritxjted. or is stored in the recording medium such as a 
semiconductor rnemory of the first user terminal, afiex- 
&3le disc or a hard disc or the like. 

The first user who uses the data directly from the 
database requests a. key for deoTpting and ua^^ 
encrypted data to the key corVtrd center via the cornnriu- " 
nication network. Information concerning the first' user is 
presented at this time. 

The key control center trar^ers the information on 
the first user to the copyright management center while 
the copyright management cerrter uses information I 
concerning the first user to generate a crypt key peculiar 
to the first user by a predetermined algorithm, and the 
generated first user crypt key is used to encrypt the cop- 
yright management program, the first crypt key and the ^ 
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second crypt key to be transfen-ed to the key-control 
center. 

The copyright management program encrypted by 
using the crypt key generated by using the information 
on the first user is peculiar to the first user. 

The key control center which receives the encrypted 
copyright management program transmits to the first 
user terminal each of the encrypted copyright manage- 
ment program, the first crypt key and the second crypt 
key via the communication network. Then, the first user 
stores the received encrypted copyright management 
program, the first crypt key and second crypt key in a 
recording medium such as a semiconductor memory, a 
flexible disc, or a hard disc. 

The first user generates the aypt key peculiar to the 
first user by using a database utilization program which 
is distributed in advance and using information on the 
first user wrth a predetermined algorithm. Then, the first 
user decrypts the encrypted copyright management pro- 
gram, the encrypted first and second crypt keys, and the 
encrypted data is decrypted by the decrypted first crypt 
key. 

In the case of storing, copying and transfemng the 
decrypted data, it is encrypted by the second crypt key 
decrypted with the decrypted copyright management 
program. Then, the encrypted data is stored in the 
recording medjum such as the semiconductor memory 
of the first user terminal, the flexible disc or the hard disc 
or the like. When the first user uses the stored encrypted 
data, it is decrypted by using the second crypt key Then, so 
this operation is repeated for primary sue of the data. 

When the encrypted data is copied on the external 
memory medium or Is transferred to the second user ter- 
minal via the communication network, the first crypt key 
and the second crypt key are disued by the copyright 35 
management program. The first user Ihen.cannot use 
the encrypted data. 

At tNs time, wfhen the encrypted data is stored in the 
first user terminal; uncrypted information on the first user 
is added to the encrypted data wrtiich is stored. 4d 

In the case where the first user uses the encrypted 
data gain, the first user obtains the first crypt key and the' 
second crypt key from the copyright management center. 
With the regrant of the first crypt key and the second crypt 
key, it is confirmed that the second user exists which has 45 
received the copy or the transfer of the encrypted data 
from the first user, and the fact of the second user is 
recorded on the copyright management center. 

The second user who has received the copied or 
transferred encrypted data requests for the secondary so 
use of the encrypted data to the copyi-ighl management 
center. The second user is not required to register with 
the key control center preliminary, unlike the first user. At 
the time of the request for data use, with the presentation 
of the information of the first user from which the 55 
encrypted data has been copied or transferred to the 
copyright control center, the request is accepted. If the 
first user information is not presented at" this time, the 
user is recognized to be thef irst user and not the second 



user who has received the copy or the transfer of the 
encrypted data from the first user. Thus, the request for 
the secondary use is not accepted. 

The copyright management center which acepts the 
5 request of the secondary use transmits the second aypt 
key for decrypting the encrypted data, the third crypt key 
for reencrypting and redecrypting the decrypted data 
and the copyright management program for the afore- 
mentioned decryption, the reencryption and redecryp- 
10 tion, to the second user. 

The outline of the copyright management system 
described in the Japanese Patent Application No. 6- 
264199 is described as follows. 

This copyright management system uses the first 
15 public-key prepared by the user, 

the first private-key con^esponding to the first public-key, 
the second public-key, the second private-key corre- 
sponding to the second public-key. and the first secret- 
key and the second secret-key prepared by the data- 
20 base. - . . 

The database side encrypts the data which is not 
encrypted by using the first secret-key, and encrypts the 
first secret-key by the first public-key, and the second 
secret-key by the second publrc-key. These encrypted 
data and the encrypted first secret-key and second' 
secret-key are transmitted to users. 

The user decrypts the encrypted first secret-key try ' 
using the first private-key and decrypts the encrypted 
data by the decrypted first secret-key for use. Then, the' 
user decrypts the encrypted second secret-key by the 
second private-key so that the decrypted second secret- 
key is used as a crypt key for data storage, copy and 
transfer after the decryption of the data.' ' 
The outline of the data cqpyright mana'gemerit sys- 
tem described in the Japanese Patent Applicatioh No. 6- 
264201 is described as follows. 

In the caise where new data is pn-oduced by editing 
a plurality of encrypted data which are obtained from the 
database and is encrypted to be supplied to others, the 
crypt key for a plurality of data which are original mate- 
rials and edit program as editing process with a digital 
signature are used as a use permit key 

When the user who has received the edited and 
encrypted data requests for use by presenting the digital ' 
signature to the copyright management center, the cop- 
yright management center recognizes the editor on the 
basis of the digital signature. Only in the case where it is 
recognized that the editor is the authorized user of the 
edited data, the crypt' key for use is provided to thoste' • 
who request for use. 

The outline of a method described in the Japanese ' 
Patent Application No. 6-269959 is explained as follows^ 
A first user receives the encrypted data in which the 
original data is encrypted by the first crypt key" from ttie 
database and decrypts the data at the time of usage. 
Afler that the data is encrypted by a second crypt key 
generated with a predetermined algorithm using one out 
of the first crypt key the first user data, and the data 
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usage frequency or a combination thereof, and is stoced, , - 
copied and transferred. , - -.r 

When the second user requests the secondary use: * 
of the data, the data copyright management center gen- 
erates the second crypt key with a predetermined algor. .^s- 
rithm by using one out of the first crypt key of the original, v . 
data, the first user data and the data use frequency.or a • 
combination thereof to be provkJed to the second user.: . _ 

The second user to whom the second crypt key is - ^ 
provided decrypts the encrypted original data t>y using io 
the second crypt key for usage. 

[Embodiment 3] : : ,v ; 

The system shown in Rg. 4 is a crypt key system of is 
emtxKjiment 3 where the present invention is applied to. . 
the database system or the VOD system. 

Like the crypt key system shown in Fig. 3 of embod- 
iment 2, in this crypt key system, the television broad- 
casting programs and the crypt key pass through a single,, 20 
path which is the C^JV line; however, these may p£^ 
through different path, as a matter of couse. 

This system comprises a CATV station 31 for data . 
broadcasting, a data managing center 33 such as data- 
base, a video system or the like, a receiving apparatus 25 
34, a data communication apparatus 35 and a user ter? 
minal 38. . . 

The data managing center 33 and the CATV station 
31 are connected with a direct means for connecting with . 
a communication line such as a dedicated line or the like ■ 30 
or with an indirect means such as flexible disc or the like. • 
The C^TV station 31 and the receiving apparatus 34, • 
and the CATV station .3ji and the data communication . 
apparatus 35 are connected with the CATV line 37^ Inci^ 
dentally, instead. of the CATV line 37, a communication 35 
line which is an appropriate data broadcasting or avail*. . 
able tor data communication can be used. The receiving 
apparatus 34 and the user terminal 38. and the data 
communication apparatus 35and the user terminal 
means are connected with a direct means such as a con-. . 40 
nection cable or with an indirect means such as a flexible 
disc. 

What is shown with a soiki line is an uncrypted data 
path in Fig. 4 and what is shown with a broken line is an ; 
encrypted data path. 45 

The data is exchanged between the data managing • 
center 33 and the CATV station 31 in principle with a dedr 
icated line or a flexible disc. In addition, the data may be 
also exchanged with a conrtmunication line, a broadcast- 
ing satellite, a communication satellite and a tenrestrial so 
wave . broadcasting. In such a case, the dsrta is 
encrypted. , 

This crypt key system adopts the secret-key crypto- 
system and.a public-key cryptosystem. 

The data managing center 33 prepares and supplies 55 
to the CATV i>roadcasting station 31 the public-key Kbd 
and the private-key Kvd common in all the data to be sup- 
plied and the secret-key Ksdi which is different from one 
data to another. The CATV station 31 encrypts the 



received seaet-k^ Ksdi by using the pubfic-key Kbd of 
the data managing c^er 33 

CkscfiKbd=E.(Kbd. KsdO 

and broadcasts it by otultipl ex ^teletext' broadcasting 
using- scanning lines..during..the retrace line blanking 
interval of the analog television picture signal, tiie data 
broadcasting using a sub^audio band of the analog tele^; 
vision audio signal. FM'mutiplex broadcasting, or digital 
data broadcastirig. . • • . - 

Fbr.convenienbe of the data usage, menu showing, 
titles of availat)le data and introduction of data outline can 
t>e also supplied without encrypted to promote the use. 

User who selected tiie desired data requests tsy-the 
menu or the content introduction requessts for using the 
data to.the data managing center 33 via the CATV line 
37 by using the data communication line 35 through the 
CATV station 3 1 . At this time, the usertransmits own pub- 
lic-key Kbu to the data managing center 33. 

The data managing center 33 which has received 
the request for use from the user enctyps the data M by 
the secret-key Ksdi - - : - 

- Gmksdi=E (Ksdi, M) 

and transmits it to the user terminal 38. At that time..the 
private-key Kvd of the data managing center is encrypted 
by th^ pubiic-key Kvu of the user who has requested the 
use CkvdkbusE (Kbu, Kbd) - .v 

to be transmitted to the user terminal 38. ; ; i: 

The user who receives the encrypted private-key 
Ckvdkbu.of the-.clata managing center decrypts the 
encrypted private-key Qwdldnj by the user privaterkey . 
Kvu V -jV' :.- : • 

Kvd=D (Kvu. Ckvdtou) 

and decrypts the encrypted secret-key CksdiKbd by the 
decrypted private-key Kvd of the data managing center 

, ■ ♦ - 
Kscfi=D(Kvd. Cksdikbd), . . 

decrypts the encrypted data Cmksdi by tine decrypted 
secret-key Ksdi of the data managing center 

. :M»D (Ksdi. Cmksdi) . . - 

arvj use it. 
[Embodiment 4] ' . 

Since the system structure of emtxxfiment 4 is the 
same as embodiment 3 shown in Fig. 4.* explanation 
ttiereof will be omitted. 

T this system adopts tiie secret-key cryptosystem 
and the putrfic-key cryptosystem as the crypt key sys- 
temsimilarly to embodiment In embodiment 3. the pri- 
vate-key Kvd of the data managing center is encrypted 
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by the public-key Kbu of users who request for use white 
in embodiment 4, the private-i<ey Kvd of the data man- 
aging center is distributed in advance by using the IC 
card or the like and stored In the user terminal . In embod- 
iment 3 data M is distritxited corresponding to the 5 
request for data usage; while In emtxxliment 4 the data 
M is broadcast by means of the CATV line or the satellite . 
broadcasting irrespective of the request for data usage. 

When the user subscribes a comprehensive con- 
tract for using the database with the data managing 10 
center, the private-key Kvd of the data managing center 
which is commonly used with all data to be supplied is 
previously distributed to users by a recording medium 
such as an IC card or the like or a CATV line 37. and 
stored in the semiconductor memory of the user terminal is 
38, the hard disc or a flexible disc . 

The data managing center 33 prepares a secret-key 
Ksdi different for each supplying data and a public-key 
Kbd, and supplies them to the CATV station 31. The 
CATV station 31 which receives the secret-key Ksdi 20 
encrypts the secret-key Ksdi by the public-key kbd 

Cksdikbd=rE (Kbd; Ksdi) 



Other modifications of the embodiments for distrib- 
uting the crypt key will be explained. 

[Embodiments] 

In aforementioned embocfiments, the public-key Kbd 
of the data managing center is broadcast from the broad- 
casting station instead of the communication line. Thus, 
it is impossible to confirm whether the public-key Kbd is' 
justified or not 

In such a case, the private-key Kvd of the data man- 
aging center is used for digital signature to the public-key 
kbd of the data managing center. 

SkbdkvdsE (Kvd. Kbd) 

to be broadcast together with the public-key Kbd of the 
data managing center. 

The user recognizes the digital signature SWadkvd 
by the received puk>lic-key Kbd of the data managing ' 
center • . • - . • 

Kbd=D (Kbd. Skbdkvd) 



and broadcasts it by means of teletext multiplex broad- zs and when it is justified, use the public-key. 
casting using scanning lines during the retrace Ijlanking : ■ * . 
interval of the analog television picture signal, data [Embodiment 61 
broadcasting using the sub audio band of the analog tel- 
evision audio signal. FM multiplex data broadcasting or In embodiment 5. in the case where the data man-^^ 
digital data broadcasting. so aging center adopts the membership system for prelim- 

At this time, for the convenience of the data usage, Inarily registering the use of the database, the public-key 

menu showing the titles of data which can be used, or a Kbui of users who are members is also preliminarily reg- 

content introduction for explaining the data outBne for istered with tiie data managing center, 

promoting the data isage can-be also supplied without The data managing center encrypts the public-key 

encrypted. 35 Kbd of the data managing center by the public-key Kbui 

The CATV station 31 encrypts the data Mby the of each user : . - r . ' 

secret-key Ksdi - • . > ^ 

CWxlkbui=E (Kbui. Kbd). - • 

Cmksdi=E (Ksdi. M) : . , . ♦ 

40 Digital Signature is made to the tiie public-key Kbd Of the - 

and broadcasts it via the CATV line Irrespective of the data managing center by using the private-key Kvd of the 

request for use. data managing center 

The user incorporates desired data out of'the data 

which is broadcast via the CATV line on the basis of the Skt>dkvd=E (Kvd, Kbd). • 

menu or the content introduction into the user terminal 4S 

by using a receiving apparatus 34. Then, the encrypted public-key Ckbdkbui different from - 

The user decrypts the encrypted secret-key one user to anotiier and the digital signature SktxJkvd 

Cksdikbd by the private-key Kvd of the data managing are sent to the broadcasting station to broadcast the 

center which is stored in the semiconductor memory in received encrypted puWfc-key Ckbdkbui and the digital 

the user terniinal 38,a hand disc or a flexible disc so signature Skbdkvd. 

At this time, the uncrypted user identification infbr- 

Ksdi = D (Kvd. Cksdikbd) nation of each user is broadcast by adding to 'the 

encrypted public-key CkbdWxji If necessary. - ' 

and decrypts the encrypted data Cmksdi by the Uthe uer who has received the broadcast encrypted 

decrypted secret-key Ksdi ss public-key Ckbdkbui and the digital signature Skbdkvd • 

decrypts the enaypted public-key Ckbdkb of the data 

M=D (Ksdi, Ksdikbd) rnanaging center by the public-key Kvul 

*°^"se. Kbd«D (Kvui. Ckbdkbui) 
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and stores the decrypted public-key Kbd of the data man- 
aging center in the user terminal. 

The user recognizes the digitai signature SKtxjkvd 
by the received public-key Kbd of the data managing 
center 

■ : .Kbd=D (Kbd. Skbdkvd). 

and if it is justified, uses the stored pLJt)ljc-Key Kbd of the . 
data managing center 

In this manner, a crypt key different from one user 
to another can be distrflxjted. 

[Embodiment 7] 

Users present their own putsltc-key Kbu to the data 
managing center at each time of access or request to the 
data managing center. 

The data managing center which receives the 
request from the user encrypts the requested data M by 
the public-key Kbu of the user 

Cmkbu^E (Kbu. • 

and sends it to the broadcasting station. The broadcast*- 
ing station broadcasts the received encrypted data 
Cmkbu. 

The users who receives the broadcast encrypted 
data Cmktxi decrypts by the private-key Kvu of the user 

. . . ! M=D (Kvu. CmKbu). ... 

and use it. 

Figs. 5(a) through 5(c) show the modified esamples 
which.use the crypt key system of the present invention. 

Each esample shown the structure in the figure is 
applied the crypt key system, in electronic market trans- 
action using the electronic data interchange system, to 
the CTedit settlement in retail shops shown in Fig. 5 (a); 
the settlement by means of an electronic check shown 
in Fig. 5 (b);and the whole saleconducted t)y makers and 
the like shown in Rg, 5 (c). 

In these systems, a digital signature is used in addi- 
tion to the secret-key cryptosystem. These systems 
comprise a user 42, and a retail shop 43, a financial 
organization 44 or a sholesaler 45 such as a nr^ker the 
like wNch is a World Wide Web (WWW) server on ttie 
internet 

[Embodiment 8] 

",<■'•'* ^ • • _ ' 

In.the credit settlement in the shop shown in Fig. 5 • 
(a), the shop 43 broadcasts a data Ms such as order form 
format, credit card format, advertisements, catalogs, 
preview, products description, and content introduction 
of a database, and menu, charge schedule and price list 
via the satellite 41 and a CATV line. 

User 42 who receives the data Ms such as order 
form format and a public-key Kbs of the shop 43 encrypts 
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the user secret-key Ksu by ttie public-key Kbs of the shop 

43 . .. 

Cksukbs^E (Kbs. Ksu) 

£ind enters Mu items such as the order content, the pay- 
ment amount and a credit card number with encryprted 
tay the.secret-key Ksu of user 42 on the basis of infornna- * 
tion such as advertisement, catalog, products descrip- . 
tion arxl charges^rices list 

-Cmuksu=E (Ksu, Mu). / 

when needed, compresses Mu into a compressed doc- : 
umem mu and sign by digital signature by the private- 
key Kvu of the user 42 . 

SmukvuaE (Kvu, mu). 



and transmits it to shop 43 attached with the public-key 
Kbu of the user 42 via the network 47. 

The shop 43 which has received the order decrypts 
the encrypted secret-key Cksukbs of the user 42 by the 
private-l«ey Kvs of the shop 43 

Ksu^D (Kvs. Cksukbs). 

and decrypts the encrypted order document Cmuksu by 
the decrypted secret-key Ksu of the user 42 ^ . 

MusD (Ksu. Cmuksu). . 



Then, order acceptance is executed. - . 

When the digital signature Smukvu is recognized by 
35 the put9lic-key Kbu which the user 42 attached . , . . 

musD (Kbu, Smukvu), 

a receipt is sent to the user 42 via the network 47. 
4o In this system, it is possible to prevent the unjustified 
use of the credit number because the credit card numt>er 
entered In the order form is sent with encrypted. 

Further, the following process enables reliable trans- 
action: 

45 The shop 43 compresses the digital data. Msl of the 
order form format, the credit card format, advertisement, 
catalog, a preview, products description, and content 
introductionof the dataisase and meriu/charge sched- 
ule/price list into a compressed document msl. with dig- 
so ital signature by the private-key Kvs of the shop 43 • > • 

SmslkvssE (Kvs, msl) 

and broadcasts it attaching the public-key Kbs of the 
55 shop 43 so that users recognizes the digital signature 
Smsikvs tsy using the public-key M3S of the shop 43 

ms'sD (Kbs, Smsk^). 
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[Embodiment 9] . • . - ■ . . , . 

In the settlement by means of electronic cheicks 
shown in Fig. 5 (b). the iDank as financial organization 44 
broadcasts the blank check format Mf which is digital 
data attached with the putrfiic-key Kbf of the bank 44 via 
the satellite 41 or the CATV line. 

The user 42 who receives the Wank check ibmiat Mf 
encrypts the seaet-key Ksu of the user 42 by the bank 
public-key Kb - . . 

Cksukbf^E (Kbf. Ksu), 

enters Mu items concerning a payee and the payment 
amount with encrypted by the secret-key Ksu of the user 
42 . . . 

. . . • Cnr»ksu«E (Ksu. Mu). 

when needed, compresses Mu to the compressed doc- 
ument mu, and sign by digital signature by using the pri- 
vate-key Kvu of the user 42 

SmukvusE (Kvu. mu) 

and transmits them attaching the public-key Kbu of the 
user 42 and the encrypted secret-key Cksukbf of the user 
42 which is encrypted by the the public-key Kbf of the 
bank 44 to the bank 44 via the network 47. 

The bank 44 which receives the described check 
uses the bank private-key Kvf to decrypt the encrypted 
secret-key Cksuktrf of the user 42 

. .Ksu?=D(Kvf. CksukbO. 

decrypts the encrypted data Cmuksu of the payee and 
the payment amoount by the decrypted user seaet-key 

Ksu . . 

MuaD (Ksu. Cmuksu) 

and recognizes the described content, and the currency • 
exchange process is executed. 

furthermore, the bank recognizes the user 42 by 
Smuksu with the digital signature using the pMc-key 
Kbu added by the user 42 

mu'-D (Kbu. Snnuksu) 

encrypts the confirmation document Ms2 by the public- 
key Kbu added by the user 42 

Cnns2kbUBE (Kbu. Ms2) 

and send it back to the user 42 via a network 47. 

The user who receives the encrypted confirmation 
document Cms2kbu .from the bank 44 decrypts the 
encrypted confirmation document Cms2ktxi by the pri- 
vate-key Kvu of the user 42 
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Ms2=D (Kvu, Cms2kbu) 

and confirms the content. 

According to the system, since the patty to which the 
payment is made and the payment amount are 
encrypted and described in the check, it is possible to 
prevent the unjustified use of the content described in 
the check. 

In addition, the blank check format Mf which is digital 
data is xnpressed into a compressed document mf and 
signed by digital signature by using the private4^ Kvf 
of the bank 44 

Snfifkvf=E (Kvf. mf) 

to be broadcast attaching the public-key Kbf of the bank 
44. The user recognizes the digital signature Smskvs by 
the public-key Kbs of the bank 44 

mf «D (Kbf. Smfkvf). 

The confirmation document Ms is further compressed 
into a compressed document ms with digital signature 
by using the public-key Kbu added by the user 

Smskbu=E (Kbu, ms) 

Thus, the t>ank can recognize the user who has entered 
onthecheck. . 

[Embodiment 10] 

At the shdesaler 45 of a maker or the like shown in 
Fig. 5 (C), the wholesaler 45 forms a prdforrha invoice' 
format Mwl into a compressed data riiwl and sijgn by cfig- 
ital signature by using the private-key Kvw of the whole- 
saler 45 • • . ■ . 

Smwlkvw=E (Kvw. mwl) 

and broadcasts it attaching the public-key Kbw of the 
wholesaler 45 via the satellite 41 or CATV line. ■ 

The user 42 WNch is a shop receives the broadcast 
proforma invoice format Mwl and the public-key Kbw of 
the wholesaler 45. and encrypts the proforma invoice 
request Mu by the public-key Kbw of the wholesaler 45 

CmukbwoE (Kbw. Mu) 

and transmits it to the wholesaler 45 via the network 47. 

At this tinpie. the proforma invoice request Mu is com- 
pressed to compressed data mu when needed," arid 
signed by the digital signature by using the private-key 
Kvu of the user 42 

Smkvu=E (Kvu. mu) 

to be transmitted together with the public-key Kbu of the 
user 42 to the wholesaler 45. 
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The wholesaler 45 which receives the encrypted 
profonma invoice request CmuKbw decrypts the 
encrypted proforma Invoice request Cmuld>wt3y the pri-:- 
vate-key Kvw of the wholesaler 45 - , 

MubD CKyu. Cmukbw) 

and recognizes the described proforma invoice request 
Mu. . 

Further, the whole saler.45 recognizes the digital 
signature Smkvu by the public-key Kbu of the user 42 

mucD (Kbu» Smkvu) 

and estimates to the proforma invoice and encrypts the 
proforma invoice Mw2 by the putslic-key Kbu of the user • 

Cmw2KbusD (Kbu. Mw2) 

artd then, transmit it to the user 42 via the network 47. 

The user 42 who receives the encrypted proforma 
invoice Cmw2kbu from the wholesaler 45 deaypts It by 
the private-key Kvu of the user 42- 

Mw2«D (Kvu..Cmw2Hbu). 

Accorcfing to this system, since the public-key and. 
the private-key are used, there is no fear that the content 
of the proforma invoice is stolen to be used and also dif- 
ferent proforma invoice can be made for each user. - . 

In the systems shown in Rgs. 5 (a) through 5 (c). 
since each fdmiat .and advertisement with no need of 
secrecy are broadcast via satellite or CATV broadcast- 
ing, the data can be effectively transmitted. 

As explained above, a multimedia system can be 
realized which combines general information media 
such as television broadcasting and audio broadcasting 
with data communication media using computers by 
using the crypt key system of the present invention, 
whhile the general information media and the data com- 
munication media has been existing so far as an- inde- 
pendent system each. 

A concrete structure for realizing the multimedia sys- 
tem will be explained as follows. 

The current television broadcasting is provided by 
means of an analog system through terrestrial wave 
broadcasting, satellite broadcasting or CATV broadcast- 
ing. In the meantime, most general data communication 
line is a puk>lic telephone line. 

In such a system structure, 'the crypt key system 
according to embodiment 1 shown in Rg. 2 can be used- 
as a basic structure of a system for realizing a videoorv 
demand. The broadcasting station broadcasts the pub- 
lic-key Kbb in multiplexing with the sub audio band of an 
audio zone in the scanning line of the vertical retrace 
interval of an analog televiston broadcasting program. 
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Users who wish to use the television program 
&>crypt their own secret-key Ksu by the put]iic-key Kbb 
broadcast from the broadcasting station 

- CKsukbb=E (Kbb. Ksu)- - 

and request for the usage: by transmitting the the 
encrypted secret-key Cksukbb to the broadcasting sta- 
tion via a comnruinication lina 

The broadcasting station decrypts the encrypted 
secret-key Cksukbb of the users by the private-key Kvb 
of the broadcasting station v . > - 

ksu=D (Kvb. Cksukbb) * 

scrarrrisies the broadcasting program by the decrypted 
secret-key Ksu and broadcasting it. 

The users descramt)les the scramt^led program for 
use by their own secret-key Ksu. 

By adopting such a structure, persons other than 
users those who request to use the program cannot-use 
the program. 

As a basic structure of a system for realizing the 
video on demand and pay-per-view in such a system 
structure, the crypt key system shown in emtjodimert 4 
or embodiment 5 in Fig. 4 can be used. 

The broadcasting station 31 encrypts by the secret- 
key Ksb of the broadcasting station 3 1 the put^Iic-l^ey Kbb - 
of ttie broadcasting station 31. 

Cksbkbb=E (Kbb. Ksb) • 

and broadcasts it via the communication line 37 in mul- 
tiplexing with the scanning line or a sub audio band of 
the retrace interval of the analog television broadcasting 
program. 

User 38 who wishes to use the television program 
38 requests for the usage by transmitting own public-key * 
Kbu to the broadcasting station 31 via the communica^ 
tion line 37. 

The broadcasting station 31 scramt3les the broad- 
casting program by the secret-key Ksb of the broadcast- 
ing station and broadcasts it via the communication line ' 
37. At this time, the private-key Kvb of the broadcasting 
station 31 is encrypted by the putslic-key Kbu of user 38 

Ckvbkbu^E (Kbu. Kvb) 

arxi is broadcast via the communication line 37. 

The user 38 decrypts the encrypted private key 
Ckvbkbu of the broadcasting station . - - 
31 tjy own private-key Kvu 

Kvb=D (Kvu, Ckvbkbu), 

decrypts the encrypted secret-key CksbMsb of the broad- 
casting station 31 by the private-tey Kvb of thedecrypted - 
t^roadcasting station 31 
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Ksb=D (Kvb. Cksbkbb) 

and descrambles the scrambled broadcasting pro- 
gramby the decrypted secret-key Ksb of the broadcast- 
ing station 31. ■ . ■ . r . 

By adopting such a structure, persons other than 
users who request to use the program cannot use them. 

Further, the crypt key system can be applied to tel- 
evision shopping which is frequently conducted currently 
by combining the'television broadcasting and the tele- 
phone. - 

In the currently conducted television shopping which 
uses the analog television broadcasting, product Intro- 
duction and sales method are presented on the televi- 
sion screen so that users record information on the sales 
method manually and request for the purchase thereof 
by a telephone on the basis of the recorded information. 

On the contrary, the crypt key systenri according to 
the present Invention proposes a transmission of data of 
the order fbrnat and the check format in multiplexing with 
the scanning line of the vertical retrace Interval or the 
sub audio band, of the audio zone. 

In the meantime; an apparatus called personal com- 
puter tetevisioh set which integrates the personal com- 
puter and the television set or an apparatus which 2S 
comtMnes a video capture device which is realized as an 
IC card, a PC card or an insertion board and a personal 
computer allows incorporation of the television picture. 

With the combination of the multiplex data such as 
an order format and a check format with a video capture 
device, an electronic television shopping can be con- 
ducted. 

In such a television shopping, when the televisiori 
shopping product introduction display is broadcast, the 
order format and the check format are broadcast in data 
multiplex with the scanning line of the vertical retrBce lin- 
terval or the sub audio band of the audio zone. 

If the users operate the apparatus when the product 
introduction display of the desired product to purchase 
is broadcast, the order format and the check format data 
are incorporated with the static display picture. 

Users who wish to use the television shopping 
enters necessary items on the order format or check for- 
mat to request for the purchase. To secure the safety of 
the transaction at this time, encryption by the public-key 4s . 
cryptsosystem or the secret-key cryptosystem and dig- 
ital signature are used ¥vith the system according to 
emtxxiiments 1 to 5. * 

At this time, the content of transaction can be con- 
firmed when the purchase order is requested by adding so 
the static display picture of the product introduction 
together with the order and the check. 

As a simple method, the order form format and the 
check format may be also transmitted as a television pic- 
ture so that necessary items are entered on the order ss 
format and the check format which are incorporated as 
a static display picture. 
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In addition, the order form format and the check for- 
mat can be transmitted via facsimile broadcasting which 
is multiptexed with the sub audio band of the audio zone. 
By adopting such a method, an electronic market 
5 using electronic data intencahnge (EDI) by means of a 
current aiialog television method can be realized with the 
television shopping. 

These video-on-demand system and the pay-per- 
view system can be applied to the digital television 
10 broadcasting other than the analog television broadcast- 
ing. 

In the case where a CATV line is used as a commu- 
nication line, both the broadcasting and data communi- 
cation can be carried out with the CATV line only 
15 Further, these video-on-demand system and pay- 
per-view system can be also applicable to transmissfon 
of high-quality audio data and moving picture data per- 
formed in computer communication network system 
using low-speed public telephone line or high-speed 
20 integrated services digital network (ISDN) or in internet 
system connecting a plurality of computer communica- 
tion network. 

As an apparatus to be used, the receiving apparatus 
and the communication apparatus can be incorporated 
in the television set. Apparatuses can be also constituted 
as a separate apparatus by using a set top box or the like. 

In addition, a constitution an apparatus refei-red to 
as a personal computer television set which is gradually 
prevalent or by combining a video capture device which 
30 is realized as an IC card a PC card or an insertion b6ard 
for transmitting a television signal to the personal com- 
puter can be used. 

Claims » v . 

35 ■■ . 

1 . Crypt key system conprising a broadcasting station 
(1 ), a database (2) . a receiving apparatus (4), a data 
communication apparatus (5) and a user terminal 
(8), wherein 

said database (2) and said broadcasting station (i) 
are connected with an online communication means 
such as a dedicated line, or the like or a off-line 
means such as a flexible disc or the like; 
said database (2) and said data communication 
apparatus (5) are connected witii a communication 
line (7): 

said broadcasting station (1) and said receiving 
apiparatus (4) are connected with a radio wave (6); 
whereas between said receiving apparatus (4) and 
said user terminal (8) and between said data com- 
munfoation apparatus (5) and said user terminal (8) 
said are connected with direct online means br'with 
off-line means such as a flexilDle disc; 
said database (2) prepares a public-key and a pri- 
vate-key and supplies said put>lic-key to said broad- 
casting station (1); 

said broadcasting station (1) broadcasts said 
received public-key; 

said receiving apparatus (4) transmits said received 
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public-key to said user terminal (8); 
said user terminal (8) stores said transmitted public* 
key: • ■ r . 

a user encrypts a secret-key of the user^ by said 
received public-key and transmits said secretTkey.atr:; 
ttie time of request for the use of data which he>>. • 
desires, to said database (2); > 
said database (2) which has received the request for 
data use deaypts said secret-key of said user by . . 
ssa6 private-key and encrypts the data by said io 
decrypted secret-key of said user to transmit the 
data to said data communication apparatus (5) via 
said communication line (7); and 
said user transmits the received data to said user 
terminal (8) to decrypt said data by said secret-key.- 15 

Crypt key system according to claim 1 wherein a dig- 
ital signature of said database (2) is provided on said 
put)lic-key. 

• • 20 

Crypt key system comprising a CATV station (31) ... 
a charging center, a receiving apparatus (34) . a data 
communication apparatus (35). and a user terminal 
(38). wherein 

between said CATV station (31} and sacj receiving 25 
apparatus (34) and between said CATV staton (31) 
and said data communication apparatus (35) are 
connected with a CATV line (37) : 
between said receiving apparatus (34) arxj said user 
terminal (38) and between said data comrrujnication - 30 
apparatus (35) and^said user terminal (38) are con- 
nected with direct online means or with off-line - 
means such as a flexible disc or the like: 
a user preliminarily registers a put)lic-key of said 
user with said CATV station (31) or presents said 35 
put)lic-key of .said user at the time of request .for 
usage; > 
said CATV station (31) encrypts a seaet-key which 
is a use permit key of said CATV (31 ) station by using 
said put3lic-key of said user who has requested the 40 
usage and also encrypts a television program by 
said secret-key, to txoadcast both via said CATV line 
(37); and 

said user receives said encrypted television pro- 
gram and said secret-key with said receiving appa- 45 
ratus (34) and decrypts said secret-key by a private- 
key corresponding to said public-key for decrypting 
said television program by said decrypted secret-, 
key- . 

. - - • 1 so 
Crypt key system oomprising a CATV station (31). a 
data managing center (33), a receiving apparatus 
(34). a data communication apparatus (35) and a 
user terminal (38). wherein 

said CATV station (31) and said data managing 55 
center (33) are connected with online communica- 
tion means such as a dedicated line or the like, or 
off-line means such as a flexible disc or the like; . 
between said CATV station and said receiving appa- 



ratus (34) and between said CATV station and said 
data communication apparatus (35) are connected 
with a CATVJine (37) ; .. 
between said rec^i>nng apparatus (34) and said user 
• terminal (38) and between said data communication 
apparatus (35) and said t^er tetnTdnal (38) are con- 
nected with direct online means or with off-line 
means such as a flexible disc or the like: 
said data managing center :(33) supplies a puUic- . 
key. and a seq:et-key which is a use permit key for 
each data to be suppGed, to said CATV station (31): 
said CATV station (31) encrypts sakJ secret-key for 
each data by said putilic-key of data managing, 
center (33) to broadcasi; 

a user requests for the use of data by using, said data 
communication apparatus (35) to said data manag- . 
ing center (EE) via said CATV line (37) together with 
transmitting a public-key of said user; 
said data managing center (33) encrypts the data by 
said secret-key for each data, and encrypts said 
|3ublic-key of data.managrng cemer (33) by said put>- 
lic-key of said user and transmits encrypted data and 
encrypted said public-key of data .managing- center 
(33) together with a private-key of said data manag- 
ing center (33) to said user; 
said user deaypts said encrypted public-key of data 
managing center (33) by.a private-key of sakJ user, 
decrypts said encrypted secret-key .for each data by. 
decrypted said public-key of data managing center 
(33) and decrypts encrypted data by deaypted said : 
secret-key for each data. - 

5. Crypt key system according io daim 4 wherein a di g^ 

ital- signature of ' said .data managing center-(33) is 
provided on said publicrkey. of data nianaging<;enter . 

(33) . • • .'f - • ■ ' • : 

6. Crypt key system comprising a CATV station (3 1 ) . a 
data managing center (33). a receiving apparatus 

(34) . a data communication apparatus (35), and a 
user terminal (38), wherein 

a public-key of a user is registered with said data 
managing center (33) in advance; 
said data managing center (33) encrypts^a public- 
key of said data managing center (33) by said putilic- 
key of each user to provide adigital signature on said 
public-key of data managing center (33) by a private- 
key of said data managing center (33); 
said encrypted public-key of said data managing 
center (33) and said digital signature of data man- 
aging center (33) are sent to said CATV station (31); 
said CATV station (31) broadcasts said received 
encrypted putilic-key of data managing center (33) 
and said digital signature: . 
said user decrypts said received encrypted put)tic- 
key of data managing center (33) by said put)lic-key 
of said user and recognizes said digital signature by 
said decrypted put}lic-key of data control center. 



2^ EP 0 719 045 A2 . 30 

7. Crypt key system according to daim 6 wherein 
uncrypted user identification information of each 
user is further added to the encrypted public-key of 
said data managing center (33) to be broadcast. 

8. Crypt key system comprising a CATV statbn (31), a 

data managing center (33), a receiving apparatus - 
(4), a data communication apparatus (35), and a " » ' 

user terminal (38). wherein 

a user presents a public-key of said user to said data lo 
managing center (33) upon requesting use of the 
data to said data managing center (33); 
saiddata managing center (33) receivesthe request 
for data use from said user and encrypts the data 
requested by said public-key of said user to send to 15 
said CATV station (31) ; 

said CATV station (31) broadcasts said received 
encrypted data; and 

said user wrho receives said broadcast encrypted 
data decrypts said encrypted data by a private-key so 

of said user. ... 
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